What to do When the Worst Happens: Responding to a Cybersecurity Breach
November 21, 2018 —
Scott L. Satkin & J. Kyle Janecek – Newmeyer Dillion LLPCybersecurity is a growing concern for today's businesses. While it's always advisable to take whatever action possible to avoid a cybersecurity breach, no security measures can be one hundred percent perfect, and malicious actors are always innovating and trying to find new security flaws. The implementation of new technology brings with it new opportunities, but also potentially new vulnerabilities. And hackers have one major advantage – those working to defend against cyber-attacks have to try to find and fix every potential exploit, whereas those on the other side only need to find one. As demonstrated by recent high-profile breaches at Google and Facebook, even massive tech companies with access to vast financial resources and top engineering talent can still fall prey to cyber-attacks. Therefore, understanding how to respond to a breach is just as critical to a company's cybersecurity plan as attempting to prevent one. Below are a few solid tips on how to react when an organization's cybersecurity has been compromised.
Plan in Advance
The best response to a cybersecurity breach begins before the breach ever happens. A written incident response plan is of paramount importance. In the immediate aftermath of a cybersecurity breach, people will be scared and stressed. In those circumstances, they will be more likely to be able to respond effectively if there is a plan laid out for them and they have received training on how to follow that plan. Make sure that employees are trained on the parts of the plan that are relevant to them. Most may only need to know who to report to if they suspect a breach may have occurred, while those who will be involved in the breach response will need more in-depth training. The plan should also be updated regularly to account for staffing changes, new technology, and the evolving legal landscape. The law may also require a plan for responding to cybersecurity breaches, depending on the jurisdiction.
Call Your Lawyer- Early and Often
At the risk of sounding self-aggrandizing, attorneys are critical in responding to a cybersecurity breach. The most obvious reason is to advise clients on their legal obligations and potential liability – and this is indeed an important function. The patchwork of federal and state regulations governing cybersecurity is something laypeople – and even non-specialized attorneys – should navigate with caution. Of equal importance is the preservation of confidential communication under the attorney-client privilege. The presence of an attorney helps to improve the security of information surrounding the response to the breach because correspondence with that attorney is privileged, allowing candid evaluation of the breach. The ability to assert attorney-client privilege regarding an internal investigation and response can be quite useful in the event of a later external investigation or litigation.
To Disclose or Not to Disclose?
An important question that needs to be asked in the wake of a cybersecurity breach is whether the incident must be disclosed, and if so, when, how, and to whom should such disclosures be made? While many understandably wish that their mistakes and failures will never see the light of day, there are also many people who will want to know when a company's cybersecurity has been breached. Shareholders want to know – and may have a right to know – if such a breach has harmed the business. Consumers want to know if their personal information has been compromised so that they can protect against identity theft. Furthermore, state breach notification laws may mandate certain disclosures to consumers depending on facts surrounding the breach. Legal requirements from states, the federal government, and even foreign entities may also require companies to provide notices to one or more regulatory agencies.
An attorney can advise on whether a company is legally required to provide any notice in the aftermath of a data breach, but even though notice may not be a legal requirement in a particular set of circumstances, it may still be prudent to give it anyway. Google decided not to disclose the recent breach of data from its Google+ service to avoid a PR and regulatory backlash, but the fact that it had happened eventually leaked out anyway. Even though legal experts have opined in the aftermath that Google likely was not obligated to disclose the breach, the fact that it did not caused exactly what Google attempted to avoid, but with magnified effect. "Google Experiences Consumer Data Breach" may not have been a good headline, but "Google Hides Consumer Data Breach" was a worse one.
Remember: Protection Is Key
No company wants a cybersecurity breach, but past experience has increasingly demonstrated that this is not a question of "if" but rather one of "when" and "how bad." Planning ahead and knowing what to do when a data breach does happen can ensure that an organization bounces back from a breach as smoothly and painlessly as possible.
Scott Satkin and Kyle Janecek are associates in the Cybersecurity group of Newmeyer & Dillion. Focused on helping clients navigate the legal dispute implications of cybersecurity, they advise businesses on implementing and adopting proactive measures to prevent and neutralize cybersecurity threats. For questions on how they can help, contact Scott at scott.satkin@ndlf.com and Kyle at kyle.jancecek@ndlf.com.
About Newmeyer & Dillion
For more than 30 years, Newmeyer & Dillion has delivered creative and outstanding legal solutions and trial results for a wide array of clients. With over 70 attorneys practicing in all aspects of cybersecurity, business, employment, real estate, construction and insurance law, Newmeyer & Dillion delivers legal services tailored to meet each client's needs. Headquartered in Newport Beach, California, with offices in Walnut Creek, California and Las Vegas, Nevada, Newmeyer & Dillion attorneys are recognized by The Best Lawyers in America© and Super Lawyers as top tier and some of the best lawyers in California, and have been given Martindale-Hubbell Peer Review's AV Preeminent® highest rating. For additional information, call 949.854.7000 or visit www.ndlf.com.
Read the court decisionRead the full story...Reprinted courtesy of
Newport Beach Attorneys John Toohey and Nick Rodriguez Receive Full Defense Verdict
July 31, 2024 —
Dolores Montoya - Bremer Whyte Brown & O'Meara LLPBremer Whyte Brown & O’Meara is pleased to report that Partner John Toohey and Senior Associate Nicholas Rodriguez received a complete defense verdict after a 5-week jury trial in Orange County Superior Court.
The case involved a multimillion-dollar home in Orange County. Plaintiff had originally suffered a water loss throughout areas of the home. Our client, an Orange County restoration and construction company, was hired to provide on-going estimates and perform demolition. Plaintiff claimed that, in the course of the demolition process, asbestos containing material was disturbed and spread resulting in contamination throughout home. Plaintiff claimed contractor negligence and breach of contract against our client. Plaintiff sought millions against our client in general and special damages for whole home restoration and other related general damages. The jury found in complete favor of our client on all allegations and awarded zero dollars to the opposing party.
Read the court decisionRead the full story...Reprinted courtesy of
Dolores Montoya, Bremer Whyte Brown & O'Meara LLP
NY Is Set To Sue US EPA Over ‘Completion’ of PCB Removal
June 25, 2019 —
Mary B. Powers - Engineering News-RecordNew York state intends to sue the U.S. Environmental Protection Agency for issuing a certificate to General Electric Co. affirming the company completed its $1.7-billion cleanup of about 40 miles of the upper Hudson River, contaminated with PCBs from two former factories. State Attorney General Letitia James said April 11 that a December state study showed elevated PCB levels in river sediment and concentrations in fish, which were not recovering at the rate EPA anticipated.
Read the court decisionRead the full story...Reprinted courtesy of
Mary B. Powers, ENRENR may be contacted at
ENR.com@bnpmedia.com
ASCE Statement on EPA Lead Pipe and Paint Action Plan
December 27, 2021 —
Tom Smith, Executive Director - American Society of Civil Engineers (ASCE)WASHINGTON, DC. – The American Society of Civil Engineers applauds
the Lead Pipe and Paint Action Plan released yesterday by the Environmental Protection Agency to help communities across the country remove lead pipes out of their drinking water systems.
Access to clean and safe drinking water is critical to public health and economic prosperity, and ASCE's
2021 Report Card for America's Infrastructure. gave a grade of C- for the drinking water category. It is estimated that as many as 10 million American households still have lead water pipes in use, which can put at risk the health and safety of families, particularly children. For utilities, moving forward with completing an inventory of lead service lines as part of the Lead and Copper Rule is a critical step, so we can get a better national picture of the scope of the problem.
This plan will allocate nearly $3 billion from the recently passed Infrastructure Investment and Jobs Act (IIJA) to states for lead service line replacements in FY 2022 and will prioritize communities with the highest lead levels. While additional investment will be needed, it is a significant down-payment on a national shared priority of clean drinking water for all Americans. It will allow utilities of all sizes to accelerate their rate of lead pipe replacement and offer technical assistance to those communities just embarking on these types of projects.
For more information about the American Society of Civil Engineers, visit www.asce.org or www.infrastructurereportcard.org and follow us on Twitter, @ASCETweets and @ASCEGovRel.
Read the court decisionRead the full story...Reprinted courtesy of
Eleven WSHB Attorneys Honored on List of 2016 Rising Stars
September 01, 2016 —
Beverley BevenFlorez-CDJ STAFFWood Smith Henning & Berman LLP (WSHB) announced that eleven of their lawyers were recognized on the list of 2016 Rising Stars®:
- Raymond Babaian: Partner, Rancho Cucamonga
- Emil Macasinag: Senior Counsel, Los Angeles
- Amy Pennington: Partner, Los Angeles
- Christopher Perez: Senior Counsel, Rancho Cucamonga
- Keith Smith: Partner, Riverside
- Kevin Gillispie: Partner, Concord
- Alicia Kennon: Senior Counsel, Concord
- Eugene Zinovyev: Senior Associate, Concord
- Timothy Repass: Partner, Seattle and Portland
- Jodi Mullis: Senior Associate, Phoenix
- Vincent Beilman: Partner, Tampa and Miami
“We are pleased to have 11 of our best selected for this year’s lists,” Dan Berman, Firm Chairman and Founding Partner stated. “We value our selections to Rising Stars because the choices come from our peers. It is truly an honor and a validation of all of the great work we do at WSHB.”
Read the court decision
Read the full story...
Reprinted courtesy of
Sold Signs Fill Builder Lots as U.S. Confidence Rises: Economy
June 26, 2014 — Shobhana Chandra and Nina Glinski – Bloomberg
Buyers swarmed builder lots in May to propel the biggest gain in sales of new homes in 22 years, while consumer confidence this month was the strongest since 2008, showing how an improving U.S. job market is giving the economy a much-needed lift.
Home sales jumped 18.6 percent, the largest one-month surge since January 1992, to a 504,000 annualized pace, according to figures from the Commerce Department today in Washington. Another report showed household sentiment climbed in June to the highest point since the early days of the recession that began more than six years ago.
Payroll gains that have exceeded 200,000 workers for four consecutive months and stable borrowing costs at historically low levels are giving Americans the assurance to step back into the real-estate market. The need for builders such as Hovnanian Enterprises Inc. (HOV) to keep up with the growing demand will lead to gains in construction that will boost the economic expansion.
Ms. Chandra may be contacted at schandra1@bloomberg.net; Ms. Glinski may be contacted at nglinski@bloomberg.net Read the court decision
Read the full story...
Reprinted courtesy of Shobhana Chandra and Nina Glinski, Bloomberg
Chambers USA 2020 Ranks White and Williams as a Leading Law Firm
June 15, 2020 — White and Williams LLP
White and Williams is once again recognized by Chambers USA as a leading law firm in Pennsylvania for achievements and client service in the area of insurance law. In addition, four lawyers received individual honors – two for their work in insurance, one for his work in banking and finance and another for his work in commercial litigation.
White and Williams is acknowledged for its renowned practice offering expert representation to insurers and reinsurers across an impressive range of areas including coverage, bad faith litigation and excess liability. The firm is recognized for its notable strength in transactional and regulatory matters, complemented by its adroit handling of complex alternative dispute resolution proceedings and is described as "reasoned and respectful." Chambers also acknowledged the firm's broad trial capabilities, including handling data privacy, professional liability and toxic tort coverage claims as well as its experience in substantial claims arising from bodily injury and wrongful death suits. White and Williams' cross-disciplinary team is also highlighted, characterized for "work[ing] well together and provid[ing] exceptional representation." Read the court decision
Read the full story...
Reprinted courtesy of White and Williams LLP
CGL Policy Covering Attorney’s Fees in Property Damage Claims
December 11, 2018 — David Adelstein - Florida Construction Legal Updates
Does a CGL policy cover attorney’s fees and costs in property damages claims, to the extent there is a contractual or statutory basis to recover attorney’s fees? Naturally, you need to review the policies and this is not a clear-cut issue, but there is law to argue under.
A case I have argued in support of CGL policies providing for coverage for attorney’s fees as a component of property damage claims when there is a contractual or statutory basis is Assurance Co. of America v. Lucas Waterproofing Co., Inc., 581 F.Supp.2d 1201 (S.D.Fla. 2008). In this case, the following applied:
- The policy provided coverage for “those sums that the insured becomes legally obligated to pay as damages of… ‘property damage’….
- Property damage was defined as “physical injury to tangible property, including all resulting loss of use of that property.”
- The term damage, in of itself, was not defined in the policy.
Read the court decision
Read the full story...
Reprinted courtesy of David Adelstein, Kirwin Norris
Mr. Adelstein may be contacted at dma@kirwinnorris.com
